Utilization of Artificial Intelligence for the SIEM Logging Architecture Design in the Context of Smart City

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F62690094%3A18450%2F24%3A50021631" target="_blank" >RIV/62690094:18450/24:50021631 - isvavai.cz</a>

Výsledek na webu

<a href="http://dx.doi.org/10.1007/978-981-97-4677-4_9" target="_blank" >http://dx.doi.org/10.1007/978-981-97-4677-4_9</a>

DOI - Digital Object Identifier

<a href="http://dx.doi.org/10.1007/978-981-97-4677-4_9" target="_blank" >10.1007/978-981-97-4677-4_9</a>

Jazyk výsledku

angličtina

Název v původním jazyce

Utilization of Artificial Intelligence for the SIEM Logging Architecture Design in the Context of Smart City

Popis výsledku v původním jazyce

Smart city is an important concept that is gradually establishing in the everyday life of citizens. However, the integration of this concept brings a number of challenges in the area of cybersecurity. One of the key challenges faced by smart cities is the secure management of the big amount of data generated by various interconnected devices and systems. The complexity of managing and analyzing the enormous volume of log data generated by various systems and devices represents a security challenge. Security Information and Event Management systems (SIEMs) are used for effective processing and correlation of logs from multiple sources in real time. However, the key problem remains how to design efficient logging architecture, which includes, for example, the choice of security information source types, their data representation or parsing, and finally, their introduction into the context of a security event or incident. Designing a logging architecture is an expert activity that usually uses best practice based on the security baseline of common IT systems. The question is how to support the design of logging architecture with an emphasis on the specifics of technologies used in the smart city concept. With the development of artificial intelligence methods, the possibility of supporting the entire design process with AI tools opens. The aim of this article is to analyze the possibilities for simplifying the design process of the logging architecture in SIEM systems with an emphasis on the specifics of the smart city concept while simultaneously using artificial intelligence tools.

Název v anglickém jazyce

Utilization of Artificial Intelligence for the SIEM Logging Architecture Design in the Context of Smart City

Popis výsledku anglicky

Smart city is an important concept that is gradually establishing in the everyday life of citizens. However, the integration of this concept brings a number of challenges in the area of cybersecurity. One of the key challenges faced by smart cities is the secure management of the big amount of data generated by various interconnected devices and systems. The complexity of managing and analyzing the enormous volume of log data generated by various systems and devices represents a security challenge. Security Information and Event Management systems (SIEMs) are used for effective processing and correlation of logs from multiple sources in real time. However, the key problem remains how to design efficient logging architecture, which includes, for example, the choice of security information source types, their data representation or parsing, and finally, their introduction into the context of a security event or incident. Designing a logging architecture is an expert activity that usually uses best practice based on the security baseline of common IT systems. The question is how to support the design of logging architecture with an emphasis on the specifics of technologies used in the smart city concept. With the development of artificial intelligence methods, the possibility of supporting the entire design process with AI tools opens. The aim of this article is to analyze the possibilities for simplifying the design process of the logging architecture in SIEM systems with an emphasis on the specifics of the smart city concept while simultaneously using artificial intelligence tools.

Druh

D - Stať ve sborníku

CEP obor

—

OECD FORD obor

10201 - Computer sciences, information science, bioinformathics (hardware development to be 2.2, social aspect to be 5.8)

Projekt

<a href="/cs/project/VJ02010016" target="_blank" >VJ02010016: Využití umělé inteligence pro zajištění kybernetické bezpečnosti Smart City</a><br>

Návaznosti

P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Rok uplatnění

2024

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Název statě ve sborníku

Advances and Trends in Artificial Intelligence :Theory and Applications

ISBN

978-981-9746-76-7

ISSN

0302-9743

e-ISSN

1611-3349

Počet stran výsledku

14

Strana od-do

93-106

Název nakladatele

Springer

Místo vydání

Singapore

Místo konání akce

Hradec Králové

Datum konání akce

10. 7. 2024

Typ akce podle státní příslušnosti

WRD - Celosvětová akce

Kód UT WoS článku

—